A customer of mine has a Joomla web site and the 'administrator' dir is password protected.
For some reason, starting a few days ago we've had thousands of IPs (russian block mostly) trying to brute force the http password for the dir resulting in CSF banning an IP every few seconds.
But since we can only block a few hundred IPs, this means every couple of hours all the old brute forcers are back at it automatically.
Anyway, just wondering if there is any decent way of stopping this nonsense using mod_rewrites maybe?
Basically would ideally prefer to limit the 'administrator' dir to ONE specific IP and anyone else visiting the URL should be automatically re-directed (to google.com for example) without being prompted to log in.
Essentially, limit the http password entry to only one IP for this one particular dir (administrator). Cheers. D.
For some reason, starting a few days ago we've had thousands of IPs (russian block mostly) trying to brute force the http password for the dir resulting in CSF banning an IP every few seconds.
But since we can only block a few hundred IPs, this means every couple of hours all the old brute forcers are back at it automatically.
Anyway, just wondering if there is any decent way of stopping this nonsense using mod_rewrites maybe?
Basically would ideally prefer to limit the 'administrator' dir to ONE specific IP and anyone else visiting the URL should be automatically re-directed (to google.com for example) without being prompted to log in.
Essentially, limit the http password entry to only one IP for this one particular dir (administrator). Cheers. D.